Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/eUfzOZhsGuq6e0IEaV3XnwyZzFs.roa
File: eUfzOZhsGuq6e0IEaV3XnwyZzFs.roa (raw, json)
Hash identifier: Sy97WdhTwoWpstq9JSH6gBG8laR+iEX7SoSPmjEtKJQ=
Subject key identifier: 79:47:F3:39:98:6C:1A:EA:BA:7B:42:04:69:5D:D7:9F:0C:99:CC:5B
Certificate issuer: /CN=77bc534ba44e9d3cba2f2446d4a3dd6eea9b8f61
Certificate serial: 0184E21BE06B3F66B3F4E68B26236C01D340
Authority key identifier: 77:BC:53:4B:A4:4E:9D:3C:BA:2F:24:46:D4:A3:DD:6E:EA:9B:8F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7xTS6ROnTy6LyRG1KPdbuqbj2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/eUfzOZhsGuq6e0IEaV3XnwyZzFs.roa
Signing time: Mon 05 Dec 2022 11:46:28 +0000
ROA not before: Mon 05 Dec 2022 11:46:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212217
IP address blocks: 46.253.129.0/24 maxlen: 24
2a11:60c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:1b:e0:6b:3f:66:b3:f4:e6:8b:26:23:6c:01:d3:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77bc534ba44e9d3cba2f2446d4a3dd6eea9b8f61
Validity
Not Before: Dec 5 11:46:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7947f339986c1aeaba7b4204695dd79f0c99cc5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dc:0a:9f:6b:63:6f:e0:00:00:81:76:65:c8:
ba:bf:82:96:8e:aa:db:94:c0:fa:be:73:9a:25:cb:
ed:bb:14:ca:1c:e1:2d:c6:b9:28:a6:7f:23:f9:d4:
18:1b:1d:76:3c:21:0a:81:0a:03:92:43:df:9b:44:
34:22:7f:fd:a9:b6:ab:b0:e0:56:79:85:ee:7b:48:
5a:8f:dc:2c:26:93:77:5a:f1:ff:d9:57:76:bf:c9:
93:7a:c9:00:b9:7f:b5:3a:1c:15:35:66:2e:18:06:
e0:32:65:40:27:a4:3a:9e:06:64:5a:d1:3f:4d:be:
b0:ea:08:ba:34:a4:2e:61:2a:5f:ea:4a:04:12:f6:
38:bb:e9:fb:f4:e1:c6:fb:59:55:3c:03:c5:a3:47:
b9:1f:de:ad:70:42:5f:05:bc:a5:d2:67:9a:87:9b:
68:ad:fb:c4:4f:aa:12:e9:83:ea:0c:b7:92:4e:da:
f3:9e:a1:35:82:69:2c:52:a0:37:9e:b8:77:51:cc:
7e:47:36:b2:2f:94:30:8a:e7:e6:1f:2a:dd:f7:f5:
6b:d3:15:0b:aa:13:e7:df:67:6e:bb:20:c2:72:f1:
70:3b:62:7e:d4:8c:ac:fd:f0:1c:49:86:9a:80:22:
00:e5:77:a4:e0:49:96:b0:2c:46:c7:ff:a1:7a:e0:
a2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:47:F3:39:98:6C:1A:EA:BA:7B:42:04:69:5D:D7:9F:0C:99:CC:5B
X509v3 Authority Key Identifier:
keyid:77:BC:53:4B:A4:4E:9D:3C:BA:2F:24:46:D4:A3:DD:6E:EA:9B:8F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7xTS6ROnTy6LyRG1KPdbuqbj2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/eUfzOZhsGuq6e0IEaV3XnwyZzFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/d7xTS6ROnTy6LyRG1KPdbuqbj2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.129.0/24
IPv6:
2a11:60c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
03:c3:1e:6e:ff:cb:cd:95:3c:13:65:bd:0f:d9:a1:35:6a:c0:
ac:87:b8:6d:56:8a:80:56:e9:7e:56:a5:84:0f:ca:62:b5:ad:
19:a1:42:c1:e1:a0:38:dc:a3:66:f2:45:9b:32:f7:92:30:9c:
d4:d1:00:38:82:38:8e:e2:58:a4:f5:05:84:ff:5e:be:86:22:
cc:6a:fa:56:4c:9d:15:00:c5:cc:0c:8e:54:56:61:3c:1d:fe:
97:b0:a7:99:9a:89:ca:94:a0:53:e0:80:28:bd:a7:59:6b:dd:
e7:a8:c5:da:f0:0a:34:94:8c:61:f6:cf:9f:0d:06:6f:5d:c2:
94:c1:84:f6:05:b1:c8:2b:8d:de:de:dd:45:72:64:92:21:49:
ed:74:ae:9b:60:14:53:67:83:24:8e:d4:5f:30:13:36:63:01:
27:88:92:bb:66:3a:6a:df:60:ed:15:ba:65:df:8b:6c:ec:40:
24:3a:6c:9a:04:0e:de:a0:f8:de:97:1b:13:05:81:69:9f:6d:
4a:7d:b6:a0:70:b0:a3:5d:54:6e:5b:66:b7:1e:e8:74:82:db:
8b:a5:de:24:7c:73:29:00:48:73:52:67:2e:44:cd:ad:d6:a5:
6c:a5:62:0a:09:c7:d0:54:23:a8:54:c3:5c:68:a2:db:3f:d2:
25:c4:47:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:16 2024 by rpki-client on console-ams.rpki-client.org